Mozilla: Sender Email Address Spoofing using encoded Unicode characters
By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird 68.8.0...